[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Asrg] 6. Proposals - Challenge/response - CRI

To: "'Deven T. Corzine'" <deven@ties.org>, "'Yakov Shafranovich'" <research@solidmatrix.com>
Subject: RE: [Asrg] 6. Proposals - Challenge/response - CRI
From: "Eric Dean" <eric@purespeed.com>
Date: Wed, 20 Aug 2003 16:12:51 -0400
Cc: "'Andrew Akehurst'" <A.D.Akehurst-99@student.lboro.ac.uk>, <asrg@ietf.org>
Importance: Normal
In-reply-to: <Pine.LNX.4.33.0308201326060.25117-100000@escher.ties.org>
List-archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=unsubscribe>
Sender: asrg-admin@ietf.org

Yes considering many CR systems use CR URLs such as
http://cr.foo.com/?sender=joe@foo.com&rcpt=sue@bar.com

There's a lot of room for improvement.

> -----Original Message-----
> From: asrg-admin@ietf.org [mailto:asrg-admin@ietf.org] On Behalf Of
Deven
> T. Corzine
> Sent: Wednesday, August 20, 2003 1:42 PM
> To: Yakov Shafranovich
> Cc: Andrew Akehurst; asrg@ietf.org
> Subject: Re: [Asrg] 6. Proposals - Challenge/response - CRI
> 
> On Wed, 20 Aug 2003, Yakov Shafranovich wrote:
> 
> > > > I think the only really significant semantic suggestion I'm
making
> > > > is that a hash of the body of a message should be included to
> > > > prevent forgeries of level-two systems.
> >
> > That has been mentioned before and is a pretty good idea. It also
> > alleviates some privacy concerns since the originating MTA/MUA does
not
> > have to store copies of messages, but can store MD5 hashes instead.
> 
> Using a hash is an obvious thing to do, but it begs the question of
> exactly
> what you're hashing.  You can't safely hash the entire message because
the
> headers change on every hop, at least for Received: lines.  Other
headers
> might be mangled or normalized as well.  You can ignore the header,
but it
> would be good to validate parts of it.  Even if you just hash the
body,
> you
> have to be concerned about the message being mangled by intermediate
MTAs.
> 
> Now, you could Base64-encode the content to protect it against
mangling,
> but that renders the plaintext of the message unreadable.  You could
strip
> out all characters but the ones used for Base64 encoding, and hash
that.
> Perhaps quoted-printable encoding would be another semi-readable
option.
> 
> PGP has to deal with this issue for "clear-signed" messages -- how
does it
> address this issue?  (Or does it depend on the body not getting
mangled to
> be able to verify the signature?)
> 
> Of course, another option is to simply use PGP.  This seems the
obvious
> answer for mailing lists -- the mailing list should clear-sign all
valid
> messages with a private key used only for that mailing list, and have
the
> user whitelist that PGP key (perhaps by keeping a copy signed with
their
> own PGP key?) -- then no spammer could forge messages appearing to be
from
> that mailing list...
> 
> Deven
> 
> 
> _______________________________________________
> Asrg mailing list
> Asrg@ietf.org
> https://www1.ietf.org/mailman/listinfo/asrg


_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

References:
- Re: [Asrg] 6. Proposals - Challenge/response - CRI
  - From: Deven T. Corzine

Prev by Date: RE: [Asrg] 4d. Consent Framework - Protocols and Formats - XML Based
Next by Date: [Asrg] RE: 4d. Consent Framework - Language for Consent
Previous by thread: Re: [Asrg] 6. Proposals - Challenge/response - CRI
Next by thread: Re: [Asrg] 6. Proposals - Challenge/response - CRI
Index(es):
- Date
- Thread